asyncrat | 7d5fc9d31d424ddf01c154514da993c436456d7ac35efe05e68d7df3fee088fc | Triage

Sharing

General

Target

a517b351592a68de19d643d3702433e6.bin
Size

30KB
Sample

240426-bwwk3sgh8s
MD5

7d202241496e8bae3aff5b371306bbee
SHA1

9e0ac15f5dba852819ac249b3fac821bdbcab6b4
SHA256

7d5fc9d31d424ddf01c154514da993c436456d7ac35efe05e68d7df3fee088fc
SHA512

c5b5fc02a919b43cd9f807df25bbce063cd2bb1691fc28b1d098be8729d3d29557447cd61b8f7eb9aef09e34e51db60b912fae3952429aac9963ed0490771971
SSDEEP

768:h01wmvyJE0fYIPJEDnbnJCZ09pzcrlKYH9NN:h7GOAIPKfH6NN

Score

10^/10

asyncrat default rat

Malware Config

Extracted

Family

asyncrat

Version

1.0.7

Botnet

Default

C2

patria.duckdns.org:1993

Mutex

DcRatMutex_qwqdanchun

Attributes

delay
1
install
false
install_file
FULL.exe
install_folder
%AppData%

aes.plain

Targets

- Target
  
  81f6b674f3bc9a33424293cba5b2f63a9717afcdc1e6619a2a335d0e41546a03.exe
- Size
  
  63KB
- MD5
  
  a517b351592a68de19d643d3702433e6
- SHA1
  
  e49d9ec67336d00a7c6772aebbbb28e8af82cfd4
- SHA256
  
  81f6b674f3bc9a33424293cba5b2f63a9717afcdc1e6619a2a335d0e41546a03
- SHA512
  
  e08107dbe762c2f355b2e2cdd1489ddddccb37aa4b5a26a9f1be8c40bc50ff89ea7e0df6e4707dd0fdbab34c1b34521f69eb6dffccacd192494571d7b6b289b0
- SSDEEP
  
  1536:VBtb3plA0aTdeKvCeeiMl8GbbXw7x7OFk38DDGBZVclN:VBtb3plA0aTRvbeFmGbbXox7Sk6mzY
Score

10^/10

asyncrat default rat
- AsyncRat
  AsyncRAT is designed to remotely monitor and control other computers written in C#.
  rat asyncrat
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

ratdefaultasyncrat

behavioral1

asyncratdefaultrat

behavioral2

asyncratdefaultrat